Hi,
I'm using
Java 1.6 with Oracle 10.2. Right now, I build my SQL statement like this ...
Obviously, this is less than optimal because it allows for SQL injection. Is there a way I can rewrite the above to take advantage of PreparedStatements? Thanks, - Dave